Removal of dogfood metadata idp file and bucket (#28405)

- Removal of dogfood metadata idp s3 bucket - Removal of dogfood metadata idp file
2026-05-23 17:08:53 +00:00 · 2025-04-21 10:26:14 -04:00 · 2025-04-21 10:26:14 -04:00 · a131d6b41f
commit a131d6b41f
parent 5ffc9340ab
1 changed files with 23 additions and 23 deletions
--- a/infrastructure/dogfood/terraform/aws-tf-module/main.tf
+++ b/infrastructure/dogfood/terraform/aws-tf-module/main.tf
@ -70,7 +70,7 @@ locals {
  sentry_secrets = {
    FLEET_SENTRY_DSN = "${aws_secretsmanager_secret.sentry.arn}:FLEET_SENTRY_DSN::"
  }
-  idp_metadata_file = "${path.module}/files/idp-metadata.xml"
+  # idp_metadata_file = "${path.module}/files/idp-metadata.xml"
 }

 module "main" {
@ -537,29 +537,29 @@ module "ses" {
 # }

 # This is intended to be public
-module "dogfood_idp_metadata_bucket" {
-  source                                = "terraform-aws-modules/s3-bucket/aws"
-  version                               = "3.15.1"
-  bucket                                = "fleet-dogfood-idp-metadata"
-  attach_deny_insecure_transport_policy = true
-  attach_require_latest_tls_policy      = true
-  attach_public_policy                  = true
-  block_public_acls                     = false
-  block_public_policy                   = false
-  ignore_public_acls                    = false
-  restrict_public_buckets               = false
-  acl                                   = "public-read"
-  control_object_ownership              = true
-  object_ownership                      = "BucketOwnerPreferred"
-}
+# module "dogfood_idp_metadata_bucket" {
+#   source                                = "terraform-aws-modules/s3-bucket/aws"
+#   version                               = "3.15.1"
+#   bucket                                = "fleet-dogfood-idp-metadata"
+#   attach_deny_insecure_transport_policy = true
+#   attach_require_latest_tls_policy      = true
+#   attach_public_policy                  = true
+#   block_public_acls                     = false
+#   block_public_policy                   = false
+#   ignore_public_acls                    = false
+#   restrict_public_buckets               = false
+#   acl                                   = "public-read"
+#   control_object_ownership              = true
+#   object_ownership                      = "BucketOwnerPreferred"
+# }

-resource "aws_s3_object" "idp_metadata" {
-  bucket = module.dogfood_idp_metadata_bucket.s3_bucket_id
-  key    = "idp-metadata.xml"
-  source = local.idp_metadata_file
-  etag   = filemd5(local.idp_metadata_file)
-  acl    = "public-read"
-}
+# resource "aws_s3_object" "idp_metadata" {
+#   bucket = module.dogfood_idp_metadata_bucket.s3_bucket_id
+#   key    = "idp-metadata.xml"
+#   source = local.idp_metadata_file
+#   etag   = filemd5(local.idp_metadata_file)
+#   acl    = "public-read"
+# }

 module "geolite2" {
  source            = "github.com/fleetdm/fleet-terraform//addons/geolite2?ref=tf-mod-addon-geolite2-v1.0.0"